Vulnerabilities > Jsish > Jsish > 2.4.67
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-04 | CVE-2020-23259 | NULL Pointer Dereference vulnerability in Jsish An issue found in Jsish v.3.0.11 and before allows an attacker to cause a denial of service via the Jsi_Strlen function in the src/jsiChar.c file. | 7.5 |
| 2023-04-04 | CVE-2020-23260 | Out-of-bounds Write vulnerability in Jsish An issue found in Jsish v.3.0.11 and before allows an attacker to cause a denial of service via the StringReplaceCmd function in the src/jsiChar.c file. | 7.5 |
| 2021-07-13 | CVE-2020-22873 | Classic Buffer Overflow vulnerability in Jsish Buffer overflow vulnerability in function NumberToPrecisionCmd in jsish before 3.0.7, allows remote attackers to execute arbitrary code. | 9.8 |
| 2021-07-13 | CVE-2020-22874 | Integer Overflow or Wraparound vulnerability in Jsish Integer overflow vulnerability in function Jsi_ObjArraySizer in jsish before 3.0.8, allows remote attackers to execute arbitrary code. | 9.8 |
| 2021-07-13 | CVE-2020-22875 | Integer Overflow or Wraparound vulnerability in Jsish Integer overflow vulnerability in function Jsi_ObjSetLength in jsish before 3.0.6, allows remote attackers to execute arbitrary code. | 9.8 |
| 2021-07-13 | CVE-2020-22907 | Out-of-bounds Write vulnerability in Jsish Stack overflow vulnerability in function jsi_evalcode_sub in jsish before 3.0.18, allows remote attackers to cause a Denial of Service via a crafted value to the execute parameter. | 7.5 |
| 2018-09-06 | CVE-2018-1000661 | NULL Pointer Dereference vulnerability in Jsish 2.4.67 jsish version 2.4.67 contains a CWE-476: NULL Pointer Dereference vulnerability in Jsi_LogMsg (jsiUtils.c:196) that can result in Crash due to segmentation fault. | 6.5 |